paulogasparotto.com.br

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:3c:07:9a:bb:f3:e1:70:f8:a5:d4:5f:cf:1f:8c:27:52:03 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=paulogasparotto.com.br

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:3c:07:9a:bb:f3:e1:70:f8:a5:d4:5f:cf:1f:8c:27:52:03
Serial Number (int): 281763907832356566597175401793285874209283
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 4d:f8:26:d4:5c:e7:22:76:42:60:35:8c:03:97:1c:c6:eb:af:28:cb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 09:44:76:44:21:da:b5:63:a7:c3:8b:8e:dc:4b:ad:f9:5b:02:c8:56
Fingerprint (sha256): b6:d1:01:c2:e2:66:3e:19:68:34:c4:33:6f:48:e3:a2:d9:72:39:ee:75:78:27:a3:2c:9f:d3:eb:75:05:b4:2d

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate paulogasparotto.com.br

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for paulogasparotto.com.br

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

paulogasparotto.com.br
www.paulogasparotto.com.br

Other certificates including the domain name paulogasparotto.com.br

(limited to 100 certificates)

Certificate

The complete raw certificate details for paulogasparotto.com.br in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgISAzwHmrvz4XD4pdRfzx+MJ1IDMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMTYwMTAyMDhaFw0y
MDAyMTQwMTAyMDhaMCExHzAdBgNVBAMTFnBhdWxvZ2FzcGFyb3R0by5jb20uYnIw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYD8twHuMsDJl29QRPMXt7
G92SU+QO/jILiQvuQAKajIP1NIH+3XEbdH7g0s8QhgYgVuMrGlOGG8luBcqviPSn
oUIACY2nd2jZmsQcTaOdoOwFC4NCobZkgp2kVOlPZEUamkpUkNxUsRYgiZPtAu9u
162P9FGxgHkeOuILjEZKNv0u8j4VsGGyUF8gLNG9oyv95m+TcfsgbXmx6Y8NODcK
zTWn4LYtspU8QWfBxO1Jz41kORczhmGG97DdXlcL2BPsli9EDUI/g4i5WwSMHVND
1CWFltXO/CR/fIDgCPFKhAMaXAqcuH4sRppv71hwlRKBHCcr1d4GWD/XHUeOQIeR
AgMBAAGjggKJMIIChTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH
AwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFE34JtRc5yJ2QmA1
jAOXHMbrryjLMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsG
AQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNl
bmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNl
bmNyeXB0Lm9yZy8wPQYDVR0RBDYwNIIWcGF1bG9nYXNwYXJvdHRvLmNvbS5icoIa
d3d3LnBhdWxvZ2FzcGFyb3R0by5jb20uYnIwTAYDVR0gBEUwQzAIBgZngQwBAgEw
NwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j
cnlwdC5vcmcwggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwBep3P531bA57U2SH3Q
SeAyepGaDIShEhKEGHWWgXFFWAAAAW5x8jToAAAEAwBIMEYCIQDAG9GLC/hjHmcL
UcoFowSf29D4oArRSn47Rdszjnq28wIhAJ4ApiXeOcj1Fa2KpVF+OwZqUqsDrUo4
sap4lwokud6UAHcAB7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFu
cfI1OAAABAMASDBGAiEAz+v2vIB6yn0XYDCT4bTjb5elMNDm4l3IgBx4lZrUdqMC
IQCPPAoW4yU9CGY/QlaTjSnEth8IBVTJZMtPgzJjBzeJFzANBgkqhkiG9w0BAQsF
AAOCAQEAe1GAraf/l7f4KSJONxn+AGRE8SzvgQTS3+XP+Q0k3f/b7qaFdUu0977y
gvjsxjf2Ll9ZQkuk4FJFM4WK1I6np2poCo+OT4Kj48drL37ilX9tV6rVCNepcxGW
Ah9x2PU4bWfzQzpzLQjtUGtbS6K6VXLqB/0fXR7v8KNY2N5z70fhBKMTMw2X5KPI
mlZfFl1tFBlCsJcy6rdWdmJ20TODaw9SDCtiVXBtl+rHcx4S+Gvq+s+NIIbwIxTk
+1N4vR3Re9TmdpS5mMUqbZtn8Nd07B5+oSDprTWMnAh3zDfbSd8Y28I/o2S4s0v/
8O4QDb8nO/BfP7hhX8OeG5/LIqw2qw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmA/LcB7jLAyZdvUETzF7
exvdklPkDv4yC4kL7kACmoyD9TSB/t1xG3R+4NLPEIYGIFbjKxpThhvJbgXKr4j0
p6FCAAmNp3do2ZrEHE2jnaDsBQuDQqG2ZIKdpFTpT2RFGppKVJDcVLEWIImT7QLv
btetj/RRsYB5HjriC4xGSjb9LvI+FbBhslBfICzRvaMr/eZvk3H7IG15semPDTg3
Cs01p+C2LbKVPEFnwcTtSc+NZDkXM4Zhhvew3V5XC9gT7JYvRA1CP4OIuVsEjB1T
Q9QlhZbVzvwkf3yA4AjxSoQDGlwKnLh+LEaab+9YcJUSgRwnK9XeBlg/1x1HjkCH
kQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 281763907832356566597175401793285874209283
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-16 01:02:08 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-14 01:02:08 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paulogasparotto.com.br'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19196011001626384808900552726003984169737796109310287655097512087437925816333623794875449374091009162741730838526173415495621899055438659304393071366976535982629187657291874644068026665785978969909672971031292094633390717385728787810942045403507638810356190073943211270732230178742906458717257387616201961634130016220794196239751692174188971448936436519006983260733214277943889812987273827015376918156158054633250777880237630084367397935059505790263453672577417858628459694834672207947511468315793508404052096870918476221033935821005876857151945923612208239777311755295528031964055355101525826019964364625248044222353
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4df826d45ce722764260358c03971cc6ebaf28cb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paulogasparotto.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.paulogasparotto.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e71f234e80000040300483046022100c01bd18b0bf8631e670b51ca05a3049fdbd0f8a00ad14a7e3b45db338e7ab6f30221009e00a625de39c8f515ad8aa5517e3b066a52ab03ad4a38b1aa78970a24b9de9400770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e71f235380000040300483046022100cfebf6bc807aca7d17603093e1b4e36f97a530d0e6e25dc8801c78959ad476a30221008f3c0a16e3253d08663f4256938d29c4b61f080554c964cb4f83326307378917
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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